Extra scanresultaten van Farbar Recovery Scan Tool (x64) Versie:29-05-2016 02 Gestart door M. Aarden (2016-06-01 13:56:45) Gestart vanaf C:\Users\M. Aarden\Downloads Windows 10 Home (X64) (2016-02-19 17:15:03) Boot Modus: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-2248465578-4050456022-1077846344-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-2248465578-4050456022-1077846344-503 - Limited - Disabled) Gast (S-1-5-21-2248465578-4050456022-1077846344-501 - Limited - Disabled) M. Aarden (S-1-5-21-2248465578-4050456022-1077846344-1001 - Administrator - Enabled) => C:\Users\M. Aarden ==================== Security Center ======================== (Als een item is opgenomen in de fixlist, zal het worden verwijderd.) AV: ESET NOD32 Antivirus 9.0.349.15 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: ESET NOD32 Antivirus 9.0.381.1 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834} ==================== Geïnstalleerde programma's ====================== (Alleen de adware-programma's met 'verborgen' vlag zou kunnen worden toegevoegd aan de fixlist om ze zichtbaar te maken. De adware-programma's moeten handmatig gedeinstallerd worden.) 64 Bit HP CIO Components Installer (Version: 8.2.1 - Hewlett-Packard) Hidden 7-Zip 15.14 (x64) (HKLM\...\7-Zip) (Version: 15.14 - Igor Pavlov) Adobe Acrobat Reader DC - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-AC0F074E4100}) (Version: 15.016.20041 - Adobe Systems Incorporated) ARDOP_Chat (HKLM-x32\...\{CA93D7B2-ACD9-411C-AEA1-8E107A486589}) (Version: 0.4.3 - KN6KB (ARSFI.org) ) Belarc Advisor 8.5c (HKLM-x32\...\Belarc Advisor) (Version: 8.5.3.0 - Belarc Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.17 - Piriform) Commander (HKLM-x32\...\ST6UNST #2) (Version: - ) Contents (x32 Version: 1.0.0.101 - Corel Corporation) Hidden Corel FastFlick (HKLM-x32\...\_{10EC8494-8A92-49D8-9677-2483EB01F7F1}) (Version: 1.0.0.101 - Corel Corporation) Corel KPT Collection (HKLM-x32\...\_{47257E9E-E234-4C74-BD41-FDB44DC206B6}) (Version: 1.0.0.119 - Corel Corporation) Corel KPT Collection (x32 Version: 1.0.0.119 - Uw bedrijfsnaam) Hidden Corel PaintShop Pro X6 (HKLM-x32\...\_{166D1CB6-DD8A-40DD-9E25-4D31D2D6DE4D}) (Version: 16.2.0.20 - Corel Corporation) Corel PaintShop Pro X6 (x32 Version: 16.2.0.20 - Corel Corporation) Hidden Corel PaintShop Pro X8 (HKLM-x32\...\_{85C69B9B-F9BD-4A60-BD83-F2B7E081ED39}) (Version: 18.2.0.61 - Corel Corporation) Corel PaintShop Pro X8 (x32 Version: 18.2.0.61 - Corel Corporation) Hidden Creative Content (x32 Version: 1.0.0.123 - Corel Corporation) Hidden Creative Content (x32 Version: 1.0.0.123 - Uw bedrijfsnaam) Hidden CW Skimmer 1.9 (HKLM-x32\...\CW Skimmer_is1) (Version: - Afreet Software, Inc.) CwGet V2.36 (HKLM-x32\...\CwGet_is1) (Version: - ) Dimension 4 v5.31 (HKLM-x32\...\{4B8982BD-D964-4C1F-B465-1B410FA34BCB}) (Version: 5.31 - Thinking Man Software) DM780-DXL (HKLM-x32\...\{BEA14C45-B14E-4B7E-BE00-D69C12C03FC6}) (Version: 1.3.0 - K7JNX) DX Atlas 2.30 (HKLM-x32\...\DX Atlas_is1) (Version: - Afreet Software, Inc.) DXKeeper (HKLM-x32\...\ST6UNST #3) (Version: - ) DXLabLauncher (HKLM-x32\...\ST6UNST #1) (Version: - ) DXView (HKLM-x32\...\ST6UNST #4) (Version: - ) EchoLink (HKLM-x32\...\{DC33421C-0E1C-470A-BE37-7B7C82677812}) (Version: 2.0.908 - Synergenics, LLC) ESET NOD32 Antivirus (HKLM\...\{09FA3272-0D73-4F89-8404-921E811ED174}) (Version: 9.0.349.15 - ESET, spol. s r.o.) FISTS Log Converter 3.2.5 (HKLM-x32\...\{CC64765D-84FF-48F2-BD3E-A096F8B25C06}) (Version: 3.2.5 - FISTS_CW_Club) Fldigi 3.23.08 (HKLM-x32\...\Fldigi-3.23.08) (Version: 3.23.08 - Fldigi developers) Fldigi 3.23.10.10 (HKLM-x32\...\Fldigi-3.23.10.10) (Version: 3.23.10.10 - Fldigi developers) FldigiDxCluster (HKLM-x32\...\ST6UNST #12) (Version: - ) Fldigi-DXlabs Gateway (HKLM-x32\...\{CBECCD92-3065-462E-BE3F-13ECE02EDBA3}) (Version: 1.6.63 - Rick Ellison - N2AMG) flrig 1.3.25 (HKLM-x32\...\flrig-1.3.25) (Version: 1.3.25 - FLRIG developers) Global QSL Graphic Editor (HKLM-x32\...\{5B9CF546-8578-42BE-A2CF-A83CA4377C6C}) (Version: - ) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 50.0.2661.102 - Google Inc.) Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google) Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden Ham Radio Deluxe (HKLM-x32\...\{4DF979D5-464C-4926-AF73-54C1C219F06A}) (Version: 5.24.38.0 - HRD Software, LLC) HamApps Databases (16.04.16) (HKLM-x32\...\HamApps Databases (16.04.16) 16.04.16) (Version: 16.04.16 - HamApps by VK3AMA) HamApps Databases (16.04.16) (x32 Version: 16.04.16 - HamApps by VK3AMA) Hidden HamApps JTAlert (2.7.0) (HKLM-x32\...\HamApps JTAlert (2.7.0) 2.7.0) (Version: 2.7.0 - HamApps by VK3AMA) HamApps JTAlert (2.7.0) (x32 Version: 2.7.0 - HamApps by VK3AMA) Hidden HamApps Sounds (2.4.0) (HKLM-x32\...\HamApps Sounds (2.4.0) 2.4.0) (Version: 2.4.0 - HamApps by VK3AMA) HamApps Sounds (2.4.0) (x32 Version: 2.4.0 - HamApps by VK3AMA) Hidden HP LaserJet 100 color MFP M175 (HKLM-x32\...\{965D0289-10E1-45ec-B11F-A60AC9AE8D4D}) (Version: - Hewlett-Packard) HP Support Solutions Framework (HKLM-x32\...\{FE8457A5-748D-41ED-A1E6-78CFDC0629D7}) (Version: 12.3.11.29 - HP) HP Update (HKLM-x32\...\{B0069CFA-5BB9-4C03-B1C6-89CE290E5AFE}) (Version: 5.002.006.003 - Hewlett-Packard) hpbDSService (x32 Version: 001.001.05133 - Hewlett-Packard) Hidden hpbM175DSService (x32 Version: 001.001.05133 - Hewlett-Packard) Hidden HPLaserJet100ColorMFPM175_HelpLearnCenter_SI (HKLM-x32\...\{19542156-285B-458C-994D-2A21889001DF}) (Version: 1.00.0000 - Hewlett-Packard) HPLJUT (x32 Version: 1.00.0012 - HP) Hidden hppLaserJetService (x32 Version: 002.015.00602 - Hewlett-Packard) Hidden hppM175LaserJetService (x32 Version: 001.014.00480 - Hewlett-Packard) Hidden ICA (x32 Version: 1.0.0.101 - Corel Corporation) Hidden ICA (x32 Version: 16.0.0.113 - Corel Corporation) Hidden ICA (x32 Version: 18.2.0.61 - Corel Corporation) Hidden InstanceFinder (x32 Version: 1.00.0001 - HP) Hidden Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3412 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.0.3.1001 - Intel Corporation) IPM_PSP_COM (x32 Version: 16.0.0.113 - Corel Corporation) Hidden IPM_PSP_COM (x32 Version: 18.2.0.61 - Corel Corporation) Hidden IPM_PSP_COM64 (Version: 16.0.0.113 - Corel Corporation) Hidden IPM_PSP_COM64 (Version: 18.2.0.61 - Corel Corporation) Hidden IPM_VS_Pro (x32 Version: 1.0 - Corel Corporation) Hidden IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.41 - Irfan Skiljan) Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation) Malwarebytes Anti-Malware versie 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes) Manager (x32 Version: 4.0.1.25166 - 2015 pdfforge GmbH. All rights reserved) Hidden microHAM USB Device Router 8.6.3 (HKLM-x32\...\microHAM_urouter_is1) (Version: 8.6.3 - microHAM) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Mix2DxLabs (d:\Ham\MixW\) (HKLM-x32\...\ST6UNST #10) (Version: - ) Mix2DxLabs (HKLM-x32\...\ST6UNST #9) (Version: - ) MixW 3.1.1h (04/03/2012) (HKU\S-1-5-21-2248465578-4050456022-1077846344-1001\...\MixW-3.1.1h) (Version: 3.1.1h - MixW Team) MMTTY version V1.68A (HKLM-x32\...\{9E9050BC-4C00-4ED3-9DBF-4757019883D3}_is1) (Version: V1.68A - JE3HHT, Makoto Mori) Morse Runner 1.68 (HKLM-x32\...\Morse Runner_is1) (Version: - Alex Shovkoplyas, VE3NEA) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 45.1.1 - Mozilla) Mozilla Thunderbird 45.1.1 (x86 nl) (HKLM-x32\...\Mozilla Thunderbird 45.1.1 (x86 nl)) (Version: 45.1.1 - Mozilla) MRP40 Morse Decoder V66 (HKLM-x32\...\MRP40 Morse Decoder V66) (Version: - ) N1MM Logger+ (HKLM-x32\...\N1MM Logger+) (Version: 1.0.5674 - Tom, N1MM) Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.9.1 - Notepad++ Team) Null-modem emulator (com0com) (HKLM-x32\...\com0com) (Version: 2.2.2.0 - Vyacheslav Frolov) NVIDIA 3D Vision controllerstuurprogramma 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation) NVIDIA 3D Vision stuurprogramma 368.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 368.22 - NVIDIA Corporation) NVIDIA GeForce Experience 2.11.3.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.3.5 - NVIDIA Corporation) NVIDIA Grafisch stuurprogramma 368.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 368.22 - NVIDIA Corporation) NVIDIA HD Audio-stuurprogramma 1.3.34.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.14 - NVIDIA Corporation) NVIDIA Miracast virtuele audio 361.91 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 361.91 - NVIDIA Corporation) NVIDIA PhysX Systeem Software 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) Omni-Rig 1.16 (HKLM-x32\...\Omni-Rig_is1) (Version: - Alex Shovkoplyas, VE3NEA) Opera 1.5.8 (HKLM-x32\...\Opera 1.5.8_is1) (Version: - EA5HVK Software) Outils de vérification linguistique 2016 de Microsoft Office - Français (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Pathfinder (HKLM-x32\...\ST6UNST #5) (Version: - ) PDF Architect 4 (HKLM-x32\...\PDF Architect 4) (Version: 4.0.34.26215 - pdfforge GmbH) PDF Architect 4 Create Module (Version: 4.0.12.26604 - pdfforge GmbH) Hidden PDF Architect 4 Edit Module (Version: 4.0.12.26604 - pdfforge GmbH) Hidden PDF Architect 4 View Module (Version: 4.0.12.26604 - pdfforge GmbH) Hidden PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.3.0 - pdfforge GmbH) Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.) Pileup Runner 1.4 (HKLM-x32\...\Pileup Runner_is1) (Version: 1.4 - Afreet Software, Inc.) PropView (HKLM-x32\...\ST6UNST #6) (Version: - ) PSPPContent (x32 Version: 16.0.0.113 - Corel Corporation) Hidden PSPPContent (x32 Version: 18.2.0.61 - Corel Corporation) Hidden PSPPHelp (x32 Version: 16.0.0.113 - Corel Corporation) Hidden PSPPHelp (x32 Version: 18.2.0.61 - Corel Corporation) Hidden PSPPro64 (Version: 16.2.0.20 - Corel Corporation) Hidden PSPPro64 (Version: 18.2.0.61 - Corel Corporation) Hidden PstRotatorAz 12.26 (HKLM-x32\...\{FED38B9F-918C-45E5-9821-311601CE6A75}_is1) (Version: - YO3DMU) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.7.107.2016 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7083 - Realtek Semiconductor Corp.) Revo Uninstaller Pro 3.1.5 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.5 - VS Revo Group, Ltd.) ROS 7.3.2 (HKLM-x32\...\ROS 7.3.2_is1) (Version: - EA5HVK Software) RufzXP 1.1.2 (HKLM-x32\...\RufzXP_is1) (Version: - DL4MM, IV3XYM) Setup (x32 Version: 1.0.0.101 - Corel Corporation) Hidden Setup (x32 Version: 16.0.0.113 - Uw bedrijfsnaam) Hidden Setup (x32 Version: 18.2.0.61 - Uw bedrijfsnaam) Hidden Share (x32 Version: 1.0.0.101 - Corel Corporation) Hidden SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.11.3.5 - NVIDIA Corporation) Hidden SKCCLogger version v03.00.06 Win (HKLM-x32\...\{03CB63F5-4AD6-472E-8259-DA5BBDCB4527}_is1) (Version: v03.00.06 Win - Straight Key Century Club) Skype™ 7.24 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.24.104 - Skype Technologies S.A.) Speccy (HKLM\...\Speccy) (Version: 1.29 - Piriform) SpotCollector (HKLM-x32\...\ST6UNST #7) (Version: - ) SpotSpy 1.9.0 (HKLM-x32\...\SpotSpy_is1) (Version: - Volker Rose, DL9HO) SpyHunter 4 (HKLM-x32\...\SpyHunter) (Version: 4.22.8.4668 - Enigma Software Group, LLC) SyncBackFree (HKLM-x32\...\SyncBackFree_is1) (Version: 7.6.8.0 - 2BrightSparks) Taalprogramma's voor Microsoft Office 2016 - Nederlands (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.56083 - TeamViewer) Telegram Desktop version 0.9.49 (HKU\S-1-5-21-2248465578-4050456022-1077846344-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 0.9.49 - Telegram Messenger LLP) ToolboxProxy (x32 Version: 1.00.0001 - HP) Hidden Trusted QSL v2.2.1 (HKLM-x32\...\{08CF4CBB-295F-4078-83C6-D18BF92D5FB6}) (Version: 2.2.1 - The TrustedQSL Developers) U30 (HKLM-x32\...\U303.0.3.438) (Version: 3.0.3.438 - OE3JPK) U30 (HKLM-x32\...\U303.0.3.443) (Version: 3.0.3.443 - OE3JPK) UltimateAAC V1.0.2.15 (HKLM\...\{D4DCBFE9-831B-4285-95AD-0389BC7C81A1}_is1) (Version: - DK5UR) ve7cc (HKLM-x32\...\ST6UNST #11) (Version: - ) VSClassic (x32 Version: 1.0.0.101 - Corel Corporation) Hidden VSPro (x32 Version: 1.0.0.101 - Corel Corporation) Hidden Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.) Vulkan Run Time Libraries 1.0.3.0 (HKLM\...\VulkanRT1.0.3.0) (Version: 1.0.3.0 - LunarG, Inc.) WinWarbler (HKLM-x32\...\ST6UNST #8) (Version: - ) WSJT-X - JT9 and JT65 Modes for LF, MF and HF Amateur Radio. (HKLM-x32\...\wsjtx 1.6.0) (Version: 1.6.0 - Joe Taylor, K1JT) ==================== Aangepaste CLSID (gefilterd): ========================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) ==================== Geplande Taken (gefilterd) ============= (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) Task: {1805BA50-448F-4D0F-9A8E-41E54F3FCC52} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Geen bestand <==== AANDACHT Task: {187E0330-9BAA-4F57-A13E-579BC0E2111B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe Task: {1A5AD960-384A-4D7F-A86B-1FC8C7D34BEA} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Geen bestand <==== AANDACHT Task: {32E1884B-9E13-4BB7-8A2D-4A0D0EA7D5D0} - System32\Tasks\AutoPico Daily Restart => E:\AutoPlay\Docs\KMSpico\AutoPico.exe Task: {38A9D3EF-46AE-4455-A40F-A91499599107} - System32\Tasks\2BrightSparks\SyncBackFree\S82684-M. Aarden\SyncBackFree Ham => C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe [2016-04-26] (2BrightSparks Pte. Ltd.) Task: {41407470-349F-4075-8EFE-D8061AF32E42} - System32\Tasks\RunSpeccy => C:\Program Files\Speccy\Speccy64.exe [2015-12-02] (Piriform Ltd) Task: {4D018759-D297-458B-B3C3-1A6ABC15DE92} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation) Task: {52ADAF4B-0B34-49F0-A20D-1E7EE0B621ED} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Geen bestand <==== AANDACHT Task: {59E6F0CD-7A95-4B66-8A65-2647BB5739C7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-03-16] (Hewlett-Packard) Task: {6C501162-B8E2-44BB-986F-810F130D2994} - System32\Tasks\2BrightSparks\SyncBackFree\S82684-M. Aarden\SyncBackFree DXKeeper => C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe [2016-04-26] (2BrightSparks Pte. Ltd.) Task: {6FBCFACA-358A-4949-9C0B-B8FC30DC4EF1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe Task: {70F31E19-22A3-427B-8491-BFC74725501A} - System32\Tasks\2BrightSparks\SyncBackFree\PA7RA-M. Aarden\SyncBackFree Microham CW Messages! => C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe [2016-04-26] (2BrightSparks Pte. Ltd.) Task: {754A47EB-F18E-4B1B-B034-269DD8745EB8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-20] (Google Inc.) Task: {86E0AB35-653B-4E4D-8344-6C7001C90B13} - System32\Tasks\HPLJCustParticipation => C:\Program Files (x86)\HP\HPLJUT\HPLJUTSCH.exe [2010-09-22] (Hewlett Packard) Task: {8B272A09-DE0B-45F3-91AB-8F5ACEE0A950} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\windows\system32\MRT.exe [2016-05-11] (Microsoft Corporation) Task: {A50B2C60-A9D7-4771-9698-3844454A64B9} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Geen bestand <==== AANDACHT Task: {A803294F-8A0D-45D4-9D7C-CD2DB12F6FFC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-20] (Google Inc.) Task: {AD09933F-F717-4F22-8097-476C7BDCEB99} - System32\Tasks\2BrightSparks\SyncBackFree\S82684-M. Aarden\SyncBackFree Workspaces => C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe [2016-04-26] (2BrightSparks Pte. Ltd.) Task: {BA3883FD-7E4B-4F72-B1E3-726730991547} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe Task: {BFB7DFCD-312F-4EB4-AAF1-129177D13355} - System32\Tasks\2BrightSparks\SyncBackFree\S82684-M. Aarden\SyncBackFree Documents => C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe [2016-04-26] (2BrightSparks Pte. Ltd.) Task: {C227D00D-60B0-4184-B680-C3BBCC2A86A0} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation) Task: {D861B6CB-F18C-44C1-A427-37715C5C1AF6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-03-16] (Hewlett-Packard) Task: {E3B4EF50-4D0D-462E-90D3-A5251BBE2FAB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-04-15] (Piriform Ltd) Task: {E70D7944-661D-45F3-B5C0-71226878F798} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2015-07-31] (Microsoft Corporation) Task: {E81D1F8A-D7E9-4A70-BE6B-DBB030411684} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-03-16] (Hewlett-Packard) Task: {E9FFE378-1527-4126-9456-418694965145} - System32\Tasks\2BrightSparks\SyncBackFree\S82684-M. Aarden\SyncBackFree E-QSL => C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe [2016-04-26] (2BrightSparks Pte. Ltd.) Task: {EC4CEC7A-361B-468F-9140-BAAC084DFC5D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated) Task: {F4781CBE-6B54-4AD2-86DB-E9557EDC6D9C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe (Als een item is opgenomen in de fixlist, de taak (job) bestand wordt verplaatst. Het bestand dat wordt uitgevoerd door de taak zal niet worden verplaatst.) Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Snelkoppelingen ============================= (De items kunnen worden opgenomen in de fixlist.txt om hersteld of verwijderd te worden.) ==================== Geladen Modules (gefilterd) ============== 2016-02-19 19:06 - 2016-02-19 19:06 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll 2016-02-19 19:06 - 2016-02-19 19:06 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll 2016-02-23 21:18 - 2016-05-02 07:54 - 00369208 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll 2016-02-19 16:58 - 2016-05-02 07:55 - 00289848 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll 2016-03-29 22:51 - 2016-05-02 07:54 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll 2016-02-23 21:18 - 2016-05-02 07:55 - 03613240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll 2016-03-29 22:51 - 2016-05-02 07:55 - 01990200 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll 2016-03-29 22:51 - 2016-05-02 07:55 - 02667576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll 2016-03-29 22:51 - 2016-05-02 07:55 - 01842232 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll 2016-02-19 16:58 - 2016-05-02 07:55 - 00208952 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll 2016-02-19 19:10 - 2016-05-20 04:08 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2016-04-13 17:14 - 2016-03-16 06:55 - 02495768 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2016-04-13 17:14 - 2016-03-16 06:55 - 02495768 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2016-02-19 19:06 - 2016-02-19 19:06 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2016-02-19 19:06 - 2016-02-19 19:06 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2016-02-19 19:06 - 2016-02-19 19:06 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2016-02-19 19:06 - 2016-02-19 19:06 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2016-02-19 19:06 - 2016-02-19 19:06 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2015-12-02 17:57 - 2015-12-02 17:57 - 00077824 _____ () C:\Program Files\Speccy\lang\lang-1043.dll 2016-04-15 20:07 - 2016-04-15 20:07 - 00069632 _____ () C:\Program Files\CCleaner\lang\lang-1043.dll 2016-03-29 22:51 - 2016-05-02 07:54 - 00035896 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll 2016-03-29 22:51 - 2016-05-02 07:54 - 00921656 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll 2016-05-20 18:06 - 2016-05-19 21:21 - 01638400 _____ () D:\Ham\CwSkimmer\CwSkimmer.exe 2016-02-20 18:54 - 2014-12-18 11:29 - 01153536 _____ () C:\Program Files (x86)\Afreet\OmniRig\OmniRig.exe 2016-05-06 18:49 - 2016-01-08 11:26 - 00476160 _____ () D:\Ham\FOC\FOC Award Manager\FOC Award Manager.exe 2016-05-08 16:48 - 2016-05-08 16:48 - 05971456 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.UI.Xaml\4baa7f87f68d909122ffdbc196299861\Windows.UI.Xaml.ni.dll 2016-05-08 16:48 - 2016-05-08 16:48 - 04090880 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.App640a3541#\ccb6f316af8356da53a62c6fc8a6eb21\Windows.ApplicationModel.ni.dll 2016-05-08 16:48 - 2016-05-08 16:48 - 00302080 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.Gloaae92e31#\5d231a352310e563383ab3e4c8d9bc39\Windows.Globalization.ni.dll 2016-04-23 07:18 - 2016-04-23 07:18 - 01752576 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.UI\9c13a8631d6f91c445b159dc640d4d5c\Windows.UI.ni.dll 2016-05-08 16:48 - 2016-05-08 16:48 - 00497152 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.Foundation\dd97e16d4efdb88bb46aacb5c95c8ce0\Windows.Foundation.ni.dll 2016-05-08 16:48 - 2016-05-08 16:48 - 01808896 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.Networking\24ccc9fe1185f9c0d7916a81b292fa9d\Windows.Networking.ni.dll 2016-05-08 16:48 - 2016-05-08 16:48 - 00054784 _____ () C:\Users\M. Aarden\AppData\Local\Packages\microsoft.windowsfeedback_cw5n1h2txyewy\AC\Microsoft\CLR_v4.0\NativeImages\feedbackapp.helper\f27d09992cca5463b937f955463c12ff\feedbackapp.helper.ni.dll 2015-07-10 13:00 - 2015-07-10 13:00 - 00083808 _____ () C:\Windows\SystemApps\WindowsFeedback_cw5n1h2txyewy\FeedbackApp.Helper.dll 2016-05-08 16:48 - 2016-05-08 16:48 - 01173504 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.Storage\5b8e2c82767a0a09ae37097f9f7fb7a3\Windows.Storage.ni.dll 2016-05-08 16:48 - 2016-05-08 16:48 - 00961536 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.Security\64399505779896dc532281dbf1f8b91e\Windows.Security.ni.dll 2015-07-10 13:00 - 2015-07-10 13:00 - 00060416 _____ () C:\Windows\SystemApps\Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy\Microsoft.CloudExperienceHost.dll 2016-02-19 16:29 - 2013-09-16 13:17 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2016-02-19 16:58 - 2016-05-02 08:02 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2016-05-13 16:03 - 2016-05-11 13:48 - 01738904 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\libglesv2.dll 2016-05-13 16:03 - 2016-05-11 13:48 - 00086168 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\libegl.dll 2016-05-13 16:03 - 2016-05-11 13:48 - 17565848 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\PepperFlash\pepflashplayer.dll ==================== Alternate Data Streams (gefilterd) ========= (Als een item is opgenomen in de fixlist, alleen de ADS wordt verwijderd.) AlternateDataStreams: C:\ProgramData\TEMP:2388C2C5 [169] AlternateDataStreams: C:\ProgramData\TEMP:2C3D06A7 [121] AlternateDataStreams: C:\ProgramData\TEMP:72CCCD14 [236] ==================== Veilige Modus (gefilterd) =================== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. De "AlternateShell" waarde wordt hersteld.) ==================== Bestandskoppeling (gefilterd) =============== (Als een item is opgenomen in de fixlist, het registry item zal worden teruggezet naar de standaardwaarden of verwijderd.) ==================== Internet Explorer vertrouwde/beperkte toegang =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd.) ==================== Hosts inhoud: ========================== (Als nodig Hosts: opdracht kan worden opgenomen in de fixlist om Hosts te resetten.) 2013-08-22 15:25 - 2016-05-09 18:09 - 00000947 ____N C:\WINDOWS\system32\Drivers\etc\hosts 0.0.0.0 keystone.mwbsys.com 0.0.0.0 sirius.mwbsys.com 0.0.0.0 bactem.mwbsys.com 54.230.89.168 data-cdn.mbamupdates.com ==================== Andere gebieden ============================ (Momenteel is er geen automatische fix voor dit onderdeel.) HKU\S-1-5-21-2248465578-4050456022-1077846344-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\wallpaper11.jpg DNS Servers: 195.121.1.34 - 195.121.1.66 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is ingeschakeld. ==================== MSCONFIG/TASK MANAGER Uitgeschakelde items == (Momenteel is er geen automatische fix voor dit onderdeel.) HKU\S-1-5-21-2248465578-4050456022-1077846344-1001\...\StartupApproved\StartupFolder: => "Verzenden naar OneNote.lnk" HKU\S-1-5-21-2248465578-4050456022-1077846344-1001\...\StartupApproved\Run: => "OneDrive" ==================== Firewall regels (gefilterd) =============== (Als een item is opgenomen in de fixlist, wordt uit het register verwijderd. Het bestand zal niet worden verplaatst tenzij apart vermeld.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{8DF11F99-6FE1-453C-8F74-C86FA9ED4B9B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{B8A01C70-1C26-4B42-B077-17A51CE2681B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{D86326FF-579F-41E4-B510-991733D47A54}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{2F67080F-3201-4FD6-BBCC-D42F5E1E2C16}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{ABD0524B-3EA0-476A-9EFC-3D831CC3BE68}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{0D3C572E-4C71-44E4-86E8-CD328D19F3A2}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{D5266CE1-FA3E-48D4-80C6-639FAFB3AAF1}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{BF23FAED-D9CC-49F3-AACA-7FFA08C00A48}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{CA699179-AF9B-4F85-8870-E201D6D84E28}D:\ham\dxlab suite\commander\ci-v commander.exe] => (Allow) D:\ham\dxlab suite\commander\ci-v commander.exe FirewallRules: [UDP Query User{788F22CD-7BA5-45A2-B4DF-EC6813E9A74E}D:\ham\dxlab suite\commander\ci-v commander.exe] => (Allow) D:\ham\dxlab suite\commander\ci-v commander.exe FirewallRules: [TCP Query User{D6375A49-7E29-4BCB-BE4D-22CB5BAC5D23}D:\ham\dxlab suite\dxkeeper\dxkeeper.exe] => (Allow) D:\ham\dxlab suite\dxkeeper\dxkeeper.exe FirewallRules: [UDP Query User{C227905E-4F11-4FF5-AFEA-A6E8937C486C}D:\ham\dxlab suite\dxkeeper\dxkeeper.exe] => (Allow) D:\ham\dxlab suite\dxkeeper\dxkeeper.exe FirewallRules: [{F5FF5007-1BEA-4A71-BAA4-22FA17A69E8B}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe FirewallRules: [{662651BB-3206-447A-9DBB-B9E8E3BFDEF6}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe FirewallRules: [{5758B729-A98B-4374-A5CC-9F6EA5E46344}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe FirewallRules: [{5046A49A-0487-4856-B847-C3463BCB2F72}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe FirewallRules: [TCP Query User{A4AEA663-AC92-4C79-BA84-714650794179}D:\ham\pstrotatoraz\pstrotatoraz.exe] => (Allow) D:\ham\pstrotatoraz\pstrotatoraz.exe FirewallRules: [UDP Query User{657DF53E-AFF9-4D25-AEFB-C2106380A804}D:\ham\pstrotatoraz\pstrotatoraz.exe] => (Allow) D:\ham\pstrotatoraz\pstrotatoraz.exe FirewallRules: [TCP Query User{B31AF0DD-4179-4C5E-9C08-2BE70F16FCED}D:\ham\n1mm logger+\n1mmlogger.net.exe] => (Allow) D:\ham\n1mm logger+\n1mmlogger.net.exe FirewallRules: [UDP Query User{DE3D2671-A4F4-4FD9-93B6-234155EA116F}D:\ham\n1mm logger+\n1mmlogger.net.exe] => (Allow) D:\ham\n1mm logger+\n1mmlogger.net.exe FirewallRules: [TCP Query User{8EE64382-0132-4CD3-B59D-43801B100FA6}D:\ham\foc\foc award manager\foc award manager.exe] => (Allow) D:\ham\foc\foc award manager\foc award manager.exe FirewallRules: [UDP Query User{9F782C2D-078A-4F58-B9AA-998F293A03D5}D:\ham\foc\foc award manager\foc award manager.exe] => (Allow) D:\ham\foc\foc award manager\foc award manager.exe FirewallRules: [TCP Query User{16062336-DBF4-43A1-83F5-9C10E06C9267}C:\program files (x86)\k1rfd\echolink\echolink.exe] => (Allow) C:\program files (x86)\k1rfd\echolink\echolink.exe FirewallRules: [UDP Query User{FFC349D8-DBB4-4BA6-A90F-1C24CEC0A1F4}C:\program files (x86)\k1rfd\echolink\echolink.exe] => (Allow) C:\program files (x86)\k1rfd\echolink\echolink.exe FirewallRules: [{71D2BF83-176F-4646-89B3-99311B3ACE13}] => (Block) C:\program files (x86)\k1rfd\echolink\echolink.exe FirewallRules: [{85811E47-09A9-4936-A63C-6A7607361EA3}] => (Block) C:\program files (x86)\k1rfd\echolink\echolink.exe FirewallRules: [TCP Query User{6DF9BD4E-D78E-4FCF-ADB8-B9453E133187}D:\ham\fldigi\fldigi-3.23.08\fldigi.exe] => (Allow) D:\ham\fldigi\fldigi-3.23.08\fldigi.exe FirewallRules: [UDP Query User{50F826DF-5C59-407C-A671-B7F2D169BB47}D:\ham\fldigi\fldigi-3.23.08\fldigi.exe] => (Allow) D:\ham\fldigi\fldigi-3.23.08\fldigi.exe FirewallRules: [TCP Query User{91078205-5AB2-452E-B4EC-FD1AAF8AC5CC}D:\ham\hrd\dm780-dxl.exe] => (Allow) D:\ham\hrd\dm780-dxl.exe FirewallRules: [UDP Query User{D9A4C18D-633D-420C-AEFE-CC318461A484}D:\ham\hrd\dm780-dxl.exe] => (Allow) D:\ham\hrd\dm780-dxl.exe FirewallRules: [TCP Query User{73342A16-7949-4288-9E6F-1E073A4329F7}D:\ham\hrd\digital master.exe] => (Allow) D:\ham\hrd\digital master.exe FirewallRules: [UDP Query User{2988A9DD-6233-4EC0-A069-8D88AC1C8683}D:\ham\hrd\digital master.exe] => (Allow) D:\ham\hrd\digital master.exe FirewallRules: [{1BAA3F18-73C8-4172-A430-CFB985291A85}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{992A37ED-A373-4E5A-9F79-22BE22F0D079}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{7346670F-A2BC-40EA-8188-37B27E5983F4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{05FE250E-FEF6-4DD4-9227-699A87405F39}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [TCP Query User{031067BA-146B-4911-B66B-BE68A3B9798E}G:\ham\dxlab suite\dxkeeper\dxkeeper.exe] => (Allow) G:\ham\dxlab suite\dxkeeper\dxkeeper.exe FirewallRules: [UDP Query User{013EFDFB-0864-4A0F-B3A5-2082416A0D4E}G:\ham\dxlab suite\dxkeeper\dxkeeper.exe] => (Allow) G:\ham\dxlab suite\dxkeeper\dxkeeper.exe FirewallRules: [TCP Query User{67A15E83-89FB-4EFE-BD6D-E77DAE52C5BA}D:\ham\fldigi\fldigi-3.23.10.10\fldigi.exe] => (Allow) D:\ham\fldigi\fldigi-3.23.10.10\fldigi.exe FirewallRules: [UDP Query User{F94CC81A-B378-425C-B5B5-A2BC32D5AC68}D:\ham\fldigi\fldigi-3.23.10.10\fldigi.exe] => (Allow) D:\ham\fldigi\fldigi-3.23.10.10\fldigi.exe FirewallRules: [TCP Query User{6BA7B8AB-B92B-4414-AA6B-472E5C85F0C2}D:\ham\fldigi\flrig\flrig-1.3.25\flrig.exe] => (Allow) D:\ham\fldigi\flrig\flrig-1.3.25\flrig.exe FirewallRules: [UDP Query User{AE69543D-6643-4E53-92F5-512817917B03}D:\ham\fldigi\flrig\flrig-1.3.25\flrig.exe] => (Allow) D:\ham\fldigi\flrig\flrig-1.3.25\flrig.exe FirewallRules: [{FF8284A6-C751-4CD7-AE23-09089E70634D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Herstelpunten ========================= 14-05-2016 17:25:56 Windows Update 21-05-2016 19:45:36 Gepland controlepunt 25-05-2016 21:53:23 Revo Uninstaller Pro's restore point - Mozilla Thunderbird 45.1.0 (x86 nl) 30-05-2016 17:08:51 Windows Live Essentials ==================== Defecte Apparaatbeheer Apparaten ============= ==================== Eventlog fouten: ========================= Applicatiefouten: ================== Error: (05/31/2016 10:43:07 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: PA7RA) Description: Het activeren van de app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI is mislukt door de fout -2144927141. Kijk in het logboek Microsoft-Windows-TWinUI/Operational voor aanvullende informatie. Error: (05/30/2016 10:22:40 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: PA7RA) Description: Het activeren van de app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI is mislukt door de fout -2144927141. Kijk in het logboek Microsoft-Windows-TWinUI/Operational voor aanvullende informatie. Error: (05/30/2016 08:13:33 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: PA7RA) Description: Kan toepassing of service 'Windows Search' niet afsluiten. Error: (05/30/2016 05:08:52 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: De service Cryptografische services is mislukt tijdens het verwerken van aanroep OnIdentity() op het object System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol. System Error: Toegang geweigerd. . Error: (05/30/2016 04:59:26 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: HxMail.exe, versie: 16.0.6568.4636, tijdstempel: 0x56f48999 Naam van module met fout: Office.UI.Xaml.Hx.Mail.dll, versie: 16.0.6568.4636, tijdstempel: 0x56f489ee Uitzonderingscode: 0xc0000005 Foutmarge: 0x00000000003156f0 Id van proces met fout: 0x9a0 Starttijd van toepassing met fout: 0xHxMail.exe0 Pad naar toepassing met fout: HxMail.exe1 Pad naar module met fout: HxMail.exe2 Rapport-id: HxMail.exe3 Volledige pakketnaam met fout: HxMail.exe4 Relatieve toepassings-id van pakket met fout: HxMail.exe5 Error: (05/30/2016 04:24:22 PM) (Source: Microsoft Office 16) (EventID: 2000) (User: ) Description: Microsoft Outlook: Accepted Safe Mode action : U houdt de Ctrl-toets ingedrukt. Wilt u Outlook starten in de veilige modus?. Accepted Safe Mode action : Microsoft Outlook. Error: (05/30/2016 04:23:52 PM) (Source: Microsoft Office 16) (EventID: 2000) (User: ) Description: Microsoft Outlook: Accepted Safe Mode action : U houdt de Ctrl-toets ingedrukt. Wilt u Outlook starten in de veilige modus?. Accepted Safe Mode action : Microsoft Outlook. Error: (05/30/2016 03:45:59 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Naam van toepassing met fout: Corel PaintShop Pro.exe, versie: 18.0.0.2, tijdstempel: 0x571122f3 Naam van module met fout: sti.dll, versie: 10.0.10240.16384, tijdstempel: 0x559f3c03 Uitzonderingscode: 0xc0000005 Foutmarge: 0x000186b3 Id van proces met fout: 0x1004 Starttijd van toepassing met fout: 0xCorel PaintShop Pro.exe0 Pad naar toepassing met fout: Corel PaintShop Pro.exe1 Pad naar module met fout: Corel PaintShop Pro.exe2 Rapport-id: Corel PaintShop Pro.exe3 Volledige pakketnaam met fout: Corel PaintShop Pro.exe4 Relatieve toepassings-id van pakket met fout: Corel PaintShop Pro.exe5 Error: (05/29/2016 11:13:46 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: PA7RA) Description: Het activeren van de app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI is mislukt door de fout -2144927141. Kijk in het logboek Microsoft-Windows-TWinUI/Operational voor aanvullende informatie. Error: (05/28/2016 10:05:31 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: PA7RA) Description: Het activeren van de app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI is mislukt door de fout -2144927141. Kijk in het logboek Microsoft-Windows-TWinUI/Operational voor aanvullende informatie. Systeemfouten: ============= Error: (05/31/2016 10:43:07 PM) (Source: DCOM) (EventID: 10010) (User: PA7RA) Description: CortanaUI.AppXd4tad4d57t4wtdbnnmb8v2xtzym8c1n8.mca Error: (05/31/2016 10:43:04 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: De User Data Access_Session9-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 10000 milliseconden worden uitgevoerd: Service opnieuw starten. Error: (05/31/2016 10:43:04 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: De User Data Storage_Session9-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 10000 milliseconden worden uitgevoerd: Service opnieuw starten. Error: (05/31/2016 10:43:04 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: De Contact Data_Session9-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 10000 milliseconden worden uitgevoerd: Service opnieuw starten. Error: (05/31/2016 10:43:04 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: De Host synchroniseren_Session9-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 10000 milliseconden worden uitgevoerd: Service opnieuw starten. Error: (05/31/2016 09:04:16 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY) Description: {F3B4E234-7A68-4E43-B813-E4BA55A065F6} Error: (05/31/2016 08:44:12 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY) Description: {F3B4E234-7A68-4E43-B813-E4BA55A065F6} Error: (05/30/2016 10:22:40 PM) (Source: DCOM) (EventID: 10010) (User: PA7RA) Description: CortanaUI.AppXd4tad4d57t4wtdbnnmb8v2xtzym8c1n8.mca Error: (05/30/2016 10:22:38 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: De User Data Access_Session8-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 10000 milliseconden worden uitgevoerd: Service opnieuw starten. Error: (05/30/2016 10:22:38 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: De User Data Storage_Session8-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 10000 milliseconden worden uitgevoerd: Service opnieuw starten. CodeIntegrity: =================================== Date: 2016-02-19 19:16:46.991 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-02-19 19:16:46.978 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-02-19 19:16:46.967 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-02-19 19:16:46.956 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-02-19 19:16:46.941 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-02-19 19:16:46.931 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-02-19 19:16:46.920 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-02-19 19:16:46.909 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-02-19 19:16:46.029 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-02-19 19:16:45.728 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Geheugen info =========================== Processor: Intel(R) Core(TM) i5-4590 CPU @ 3.30GHz Percentage geheugen in gebruik: 22% Totaal fysiek RAM-geheugen: 16333.38 MB Beschikbaar fysiek RAM-geheugen: 12713.87 MB Totaal Virtueel geheugen: 18765.38 MB Beschikbaar Virtual geheugen: 14702.42 MB ==================== Schijven ================================ Drive c: (Windows) (Fixed) (Total:213.8 GB) (Free:147.3 GB) NTFS Drive d: (Radio) (Fixed) (Total:931.51 GB) (Free:877.82 GB) NTFS Drive g: (Externe HD PA7RA BACKUP SCHIJF !) (Fixed) (Total:931.51 GB) (Free:870.93 GB) NTFS ==================== MBR & Partitietabel ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 223.6 GB) (Disk ID: 71950FDD) Partition 1: (Active) - (Size=9.8 GB) - (Type=27) Partition 2: (Not Active) - (Size=213.8 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: EEC7D43F) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (Size: 931.5 GB) (Disk ID: 7F0A25C0) Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS) ==================== Eind van Addition.txt ============================